Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A2C0F16DA5911EFA91D5493762E951A.roa
File: 7A2C0F16DA5911EFA91D5493762E951A.roa (raw, json)
Hash identifier: z9+pC6Qt2SmigYBT31Qp8fhD4oha0/h9JZsTHKM0Vbo=
Subject key identifier: 7E:B2:C6:16:77:0F:5E:9C:B1:90:BA:B7:B0:DA:15:CD:4C:70:61:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0147A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A2C0F16DA5911EFA91D5493762E951A.roa
Signing time: Fri 24 Jan 2025 13:45:31 +0000
ROA not before: Fri 24 Jan 2025 13:45:27 +0000
ROA not after: Wed 05 Mar 2025 13:45:27 +0000
asID: 48031
IP address blocks: 154.218.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83881 (0x147a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 13:45:27 2025 GMT
Not After : Mar 5 13:45:27 2025 GMT
Subject: CN=6793997b-6a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:23:d5:ec:61:2a:7f:37:f0:11:09:2a:a0:8d:
a9:1d:95:1b:f9:d4:cf:9d:db:97:ef:50:93:0a:5e:
43:5e:30:7d:cd:84:6f:d7:af:94:c4:e3:c8:0f:9f:
26:7c:5e:30:67:8c:18:06:bd:39:48:58:38:3f:92:
40:39:61:c3:7a:f8:7b:e8:27:d2:88:61:ee:54:f5:
75:41:ee:d7:45:3e:5b:6c:02:de:c0:cc:8f:ca:21:
a9:22:89:06:5f:ca:76:3f:90:88:28:ab:55:fa:71:
0f:65:d1:17:6d:04:0b:02:08:62:26:d3:90:16:61:
d6:f7:60:d4:ce:9a:fd:92:c9:f4:d4:32:b4:e3:db:
b4:8e:f7:e5:50:af:2f:9c:ed:26:6d:79:22:87:31:
9c:3b:c2:1a:8d:30:06:0b:b0:b0:c0:ea:4e:9a:51:
5f:01:ab:bb:f5:4e:09:99:b8:e2:35:8a:9d:12:64:
2e:bf:16:f1:23:60:9d:75:e4:e0:d1:4a:6c:1b:48:
8f:cd:95:96:33:22:3a:75:95:85:d4:c8:1f:a1:28:
c9:eb:e7:c4:a7:e9:89:1c:44:d1:78:11:72:03:a8:
76:08:36:1b:d0:a4:af:2e:ad:7d:7a:7f:41:99:d9:
7b:3d:88:a4:e4:61:a7:72:ca:3f:a0:6b:3b:e3:5c:
94:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B2:C6:16:77:0F:5E:9C:B1:90:BA:B7:B0:DA:15:CD:4C:70:61:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A2C0F16DA5911EFA91D5493762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.23.0/24
Signature Algorithm: sha256WithRSAEncryption
73:8d:30:bc:7b:91:76:a2:d2:42:8d:ff:de:6c:82:41:e3:d6:
39:2b:8d:b0:8a:c2:cf:7a:12:51:b1:07:98:b8:a3:94:d1:11:
5b:df:b7:9a:0e:49:83:1e:c3:f0:b2:5d:a2:9c:9a:2d:55:0a:
9f:d1:63:e5:aa:d1:5d:8c:b3:b6:cf:ba:90:41:7b:12:47:f7:
6a:84:a8:14:75:66:31:8c:40:20:80:7a:e6:ee:1c:a0:14:82:
4d:e7:d8:18:c9:82:e9:a6:89:03:12:e3:03:dd:c4:23:ae:65:
01:19:cb:fe:db:6f:61:ab:c3:0c:b6:d0:d1:e7:72:34:64:46:
30:3d:ae:f9:75:bd:0e:87:d2:85:1e:73:b4:4f:fa:8f:12:dd:
35:07:c6:fc:6f:8a:6f:a0:b8:99:84:84:db:f6:bd:7f:11:72:
66:16:e0:38:e4:5f:aa:9d:e7:65:2c:a8:da:18:f7:8d:4c:2e:
6a:cf:98:49:2e:91:cb:a6:41:0c:de:55:b1:fb:e4:63:62:11:
3b:e2:18:0a:f7:72:a6:e6:36:0b:0e:1d:3f:6a:6d:55:6b:ed:
c2:51:29:34:74:03:da:ac:56:de:69:07:bb:ef:55:44:fd:28:
40:72:30:de:69:56:16:f9:93:c6:12:29:6f:82:02:64:82:11:
46:59:cd:e2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUepMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MTM0NTI3WhcNMjUwMzA1MTM0NTI3WjAYMRYw
FAYDVQQDEw02NzkzOTk3Yi02YTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA/CPV7GEqfzfwEQkqoI2pHZUb+dTPnduX71CTCl5DXjB9zYRv16+UxOPI
D58mfF4wZ4wYBr05SFg4P5JAOWHDevh76CfSiGHuVPV1Qe7XRT5bbALewMyPyiGp
IokGX8p2P5CIKKtV+nEPZdEXbQQLAghiJtOQFmHW92DUzpr9ksn01DK049u0jvfl
UK8vnO0mbXkihzGcO8IajTAGC7CwwOpOmlFfAau79U4JmbjiNYqdEmQuvxbxI2Cd
deTg0UpsG0iPzZWWMyI6dZWF1MgfoSjJ6+fEp+mJHETReBFyA6h2CDYb0KSvLq19
en9Bmdl7PYik5GGncso/oGs741yUtwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH6y
xhZ3D16csZC6t7DaFc1McGGdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QTJDMEYxNkRBNTkxMUVGQTkxRDU0OTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtoXMA0GCSqGSIb3DQEB
CwUAA4IBAQBzjTC8e5F2otJCjf/ebIJB49Y5K42wisLPehJRsQeYuKOU0RFb37ea
DkmDHsPwsl2inJotVQqf0WPlqtFdjLO2z7qQQXsSR/dqhKgUdWYxjEAggHrm7hyg
FIJN59gYyYLppokDEuMD3cQjrmUBGcv+229hq8MMttDR53I0ZEYwPa75db0Oh9KF
HnO0T/qPEt01B8b8b4pvoLiZhITb9r1/EXJmFuA45F+qnedlLKjaGPeNTC5qz5hJ
LpHLpkEM3lWx++RjYhE74hgK93Km5jYLDh0/am1Va+3CUSk0dAParFbeaQe771VE
/ShAcjDeaVYW+ZPGEilvggJkghFGWc3i
-----END CERTIFICATE-----
Generated at Sat Apr 26 11:39:46 2025 by rpki-client